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Abstract. This paper proves a reciprocity formula for modular inverses for 
non-zero integers and demonstrates some applications of the reciprocity for- 
mula in calculating or verifying some modular inverses of specific forms, in- 
cluding the modular inverse of a Gaussian integer modulo another Gaussian 
integer. 



1. Introduction 



Modular inverse is one of the basic operations in modular arithmetic, and it 
is applied extensively in computer science and telecommunications, particularly, 
in cryptography. However, it is also a time-consuming operation implemented in 
^ , hardware or software compared with other modular arithmetic operations such as 

OO ' addition, subtraction and even multiplication. Efficient algorithms in calculating 

^^ , modular inverse have been sought after for the past few decades and any improve- 

ments will still be welcome. 

In implementing an efficient algorithm to calculate the modular inverse of the 
^^ ' form b^^ (mod 2™), Arazi and Qi U] have made use of a reciprocity trick which 

can be translated mathematically to Eq.([6]). As modular inverse is such a funda- 
mental and important operation in mathematics, it is surprising to find only limited 
reference to this reciprocity formula in the literature, such as [2 , and none in any 
elementary textbooks, such as [51 14]. 
j^ I Although this reciprocity formula can be regarded as a modified form of the 

H ■ linear Diophantine equation Eq.Q, this formula as written in the form of Eq. (|6]) 

- - - is able to bring more insight into the properties of modular inverse, as we are going 

to show in the following discussions. 

A recent attempt [6] , which is in Chinese appearing in an IEEE publication, to 
modernize some ancient Chinese algorithms has introduced a reciprocity formula 
similar to Eq. ([6|). However, its definition of fa^b and fb^a is slightly different from 
Eq. (|6|) and thus its reciprocity formula is different. 

The classical definition of modular inverse is reproduced in this section, and 
a new definition of modular inverse is introduced in the next section. In Section 
3, the reciprocity formula and its proof will be provided; and in Section 4, some 
applications are shown. 
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Definition 1.1. In modular arithmetic, the classical definition of modular in- 
verse of an integer a modulo m is an integer x such that 

(1) aa; = 1 (mod m) 
The modular inverse is generally denoted as 

(2) a; = a^ (mod m) 

Finding the modular inverse is equivalent to finding the solution ol the following 
linear Diophantine equation, where a, x,k,m £ Z, 

(3) ax ^ km = 1 

2. Modular Inverse Definition 

Slightly different version of modular inverse is used throughout this discussion 
and it is introduced in this section. This definition of modular inverse will still 
satisfy the same congruence equation, Eq.([T]). 

Furthermore, in order to have a nicer presentation in the equations containing 
modular inverse, new notations for modular operation and modular inverse will be 
used within this paper. 

Definition 2.1. For all a, tti G Z, a modulo m, denoted by (a),„, is defined as 



(4) {a),n = a-m 

Note that 

J < (a),„ < m if m > 

\m < {a)„i < ifm<0 



In the following discussions, the following definition for modular inverse will be 
used : 

Definition 2.2. Let a,m e Z\ {0} and gcd(a, rn) — 1, modular inverse a 
modulo m, denoted by (a~^)m, is defined as : 

(5) {a^^)m = X, 

1 < X < m — \ ifl<m&^ax = l (mod m) 

m + 1 < X < —1 if m < —1 &^: a X = 1 (mod m) 

where \ 1 

X = — |rn,|(sgn(m) — sgn(a)) + sgn(a) if \m\ — 1 

Undefined ifam — or gcd{a,m) ^ 1 



Obviously, for |m| > 1, (a ^)m satisfies the congruence requirement that 

a{a^ )m = 1 (mod m) 

For I ml = 1, there are two cases. 
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Case 1: m ~ 1 

(a"^)m ^ -|l|(sgn(l)-sgn(a))+sgn(a) = -(1 - sgn(a)) + sgn(a) 

_ f 1 if a > 
^ [0 ifa<0 
Case 2: ni — —1 

{a-^).m = 2 I ^ l|(sgn(-l) - sgn(a)) + sgn(a) = -(-1 - sgn(a)) + sgn(a) 

[O ifa>0 
~ [-1 ifa<0' 

Hence for \m\ — 1, {a^^)m also satisfies the requirement that a{a~^)m = 1 
(mod to). 

It is also interesting to note that the modular inverse for \m\ — 1 as defined by 
Eq.® is slightly different from the classical definition that a~^ (mod to) = for 
|?7i| = 1 and non-zero a. 

3. Reciprocity Formula 

The rcicprocity relationship between modular inverses seems obvious from the 
linear Diophantine equation, Eq.([3]). As a matter of fact, this is the Euclidean 
algorithm (i.e., iterative division) in disguise. However, this reciprocity formula is 
not found in any classic text such as [3], nor in any modern text, such as [4l[5j. The 
reciprocity identity first appeared in [2] as Lemma 1 in a format similar to Eq. (|6l) . 
However, only positive integers were discussed for specific type of cryptography 
applications and the conditions that |to| = 1 was not taken care of. By the way, on 
the footnote of p. 244 of [2], it stated that Arazi was "the first to take advantage of 
this folklore theorem to implement fast modular inversions" . 

Theorem 3.1. (Reciprocity formula) Let a,b £ Z and gcd{a,b) — 1, then 

(6) a{a-^)b + b{b-^)a = l + ab. 

Proof. Case 1: a > 1, fe > 1 

Let U = a{a^'^)b + b{b^^)a. Since U = I (mod a) and U = 1 (mod b), 
then U = 1 (mod ab). That is, U = 1 + kab, where k G Z. Therefore, 
l<a + b<U = l + kab<a{b-l) + b{a-l) = 2ab-{a + b)<2ab=^ 

<kab<2ab ==> <k <2 =^ fc = l. 
Therefore a (a^^);, + 6 (6"i)a = l + ab. 

Case 2: a > 1,6 < -1 

Since b + 1 < {a^^)b < -1 =^ a{b + 1) < a{a^'^)b < -a, and 1 < 
{b^^)a<a-l =^ 6(a-l) < &(&"i)a < 6, therefore, a(6 + l) + 6(a-l) < 
a{a-^)b + b{b-^)a < -a + b =^ 2ab - {a - b) < U = 1 + k ab < 
-{a-b) => 2ab <2ab- {a + l~b) <kab < -{a + l-b) <0 =^ 
0<fc<2 =^ fc = l. 

Case 3: a < -1,6 > 1 

Similar to Case 2, and therefore k — 1. 

Case 4: a < -1,6 < -1 

Since 6 + 1 < {a^^)b < —1 =^ —a < a{a^^)b < a{b + 1), and a + 

1 < (6"^)a < -1 =^ -6 < b{b-^)a < b{a + 1), therefore -a - 6 < 
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a{a-^)b + b{b-'^)b < a(5 + 1) + fc(a + 1) =^ -{a + b) < U = I + kab < 
2ab+{a + b) =^ < -{a + b + 1) < kab < 2ab+{a + b+l) < 2ab =^ 
<k <2 =^ k^l. 
Case 5: \a\ = 1 or |6| = 1 

a{a-^)b + b{b-^)a = a(i|6|(sgn(&) - sgn(a)) + sgn(a)) + 6(i|a|(sgn(a) - 
sgn(5)) + sgn(&)) = 6(a + sgn(6)) +sgn(a)(a-a& sgn(6)) = (l + a6)- (1- 
a sgn(a))(l - b sgn(6)) = (1 + a&) - (1 - |a|)(l - |6|) = l + ab. 

D 

4. Applications 

Corollary 4.1. If a,b,k e Z and gcd(a, fe) = 1, then 

(ika + b)-^) =^^"')« I"I>1 

^^ ' '" \(&-i)„ + i(sgn(fca + 6)-sgn(&))) |a| = 1 

Proof. Case 1: \a\ > 1 

a{a-^)b + b{b-^)a ^ l + ab =^ {ka + b){b-^)a ^ I + a{b - {a-^)b + 

k{b-^)a) =^ {{ka + b)-^)a^{b-^)a 

Case 2: |a| = 1 

((fca + &)-!), -(6-1), 

= i|a|(sgn(a)-sgn(fca + 6)) + sgn(A:a+6)-(i|a|(sgn(a)-sgn(6))+sgn(6)) 

= \{\a\ - 2)(sgn(6) - sgn(fca + b)) = i(sgn(fca + 6) - sgn(&)) 

D 

Corollary 4.2. If a, b,k e Z, \a\ ^ 1 and gcd(a, 6) = 1, then 

ia~^)ka+b = fc(a - ib^^)a) + (a"^)& 
(a-i)fca_fa = fc(6-i)a-(fe-(a-i),) 



(7) 

Proof 



_i, _ l + a(/sa + 6) - {ka + b){{ka + b)'^)a 



(a )*:a+fc — 



(fca + 6) + 



a 
l-(fca + b)(b-i), 
a 

l-&(&-')a 



= (fca + 6)-fc(fe-^)a + 

u 

= k{a-{b-^)a) + {a-^)b 

This completes the first equation. And note {{ka—b)^^)a — ((~&)^^)a = o.~{b^^)a, 
and the second equation will be obtained. D 

It is interesting to note that Eq.(l7|) fails if the classic definition of {a^^jb = 
for |6| = 1 is used. 

On the other hand, although in the proof, it is assumed that a,b,k G Z, it is 
a bonus to note that this equation is also valid when k ^ i ~ -\/— 1. That is, the 
modular invesre of a (mod ai + b) is {a^^)b + i{a — {b^^)a). 

Corollary 4.3. //gcd(a, 6) ~ 1, then 

iib')-')a^-imb-\-'2){b-%)\. 
^ii3-2bib-%){{b-%r),. 
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Proof. Let x = b - {a^^)b,y = {b{b^^)a - 2)(6^^)q, and since a {a^^)b + 
b{b^^)a = l + ab =^ b'^y'^ = l + a^(a^a;^ — 2)a;^, the first part of the equation will 
become obvious. Similarly, b'^{{3 - 2b{b-^)a){{b-^)af) = 1 - a'^x:^{l + 2&(&-i)a), 
and the second part is then also proved. D 

For the following corollaries, let a, 6, c, d e Z, gcd(a, b) = gcd(c, d) = 1, 
u = a c -\- b d^v — a d — b c^ s — o? + b^ ^t = c^ + (P ^ 
xi = a(d-i)c + b{d - {c-^)d),X2 = a[c - {d-^)c) + b{c-^)d, 
X3 = aid - {c-^)d) - b{d-^)c),Xi = aic-% - b{c - (rf-i),), 
yi = c{a - (6-i)a) + d(a-i)6, ya = c{5-i)„ + d{b - (fl-i)?,), 
y3 = c{b - (a-i)fc) - rf(6-i)a,2/4 = c{a-^)b - d{a - (fo-i),). 

Corollary 4.4. If\u\ > 1 and \v\ > 1, then 

(9) i{x^)-')u ^ iy^)u, for I ^ 1,2. 

(10) {ix,r'),^{y,),, fori^3,4- 

Proof. By direct expansion, and applying Eq.([6]) where appropriate, it can 
be shown that 

xiyi = l + u{{a-^)t.{d- (c-i)d) + (d-i),(a- (6-i)„)), 
X2y2 = 1 + w {{b-')aic - id-^)c) + ic-')d{b - ia-')b)), 
xsys = l-v iib-%id - {c-^)d) - {d-^Ub - (a-i)b)), 
Xiyi = l-v iia-')b{c - {d-^)c) - {c-')dia - {b-')a))- 

Hence, figs.® and ([T0| are obtained. D 

Furthermore, if a, 6, c and d are all positive, then 
< c+d <yi= c{a-{b~'^)a) + d{a~^)b < c{a-l) + d{b-l) = {ac+bd)-{a + d) < 
ac + bd — u, and hence, 

{{xiy^)u = 2/1, a a,b,c,d > 

Corollary 4.5. If\u\ > 1, \v\ > 1 and gcd{u,v) — 1, then 

(11) {{a' + 52)-i)„ = {{c{a - (fe-i)„) + dia-')b)iv-X)^ 

(12) ((c2 + d2)-i)„ = ((a(d-i), + b{d - {c-')d)){v-X)u 

(13) iia' + b^)-% - Ma-')b - d{a - {b-^)a)){u-%), 

(14) ((c2 + d^)-% - ((a(c-i)d - b{c - {d-')c)){u-'Ua 

Proof. Let zi = a{a - {b^^)a) + b{a^^)b, zi = c(dr^)a + d(d - (c"^)d), 
Z3=c(c-(d-i)c)+d(c-i)d. 

Similarly, it can also be shown that 

s yi = u + M zi , 

iXi = U + MZ2 
S 2/4 = M — U Zl 
i X4 = M + W 23 

Hence, Eqs.dll]), ([12]), dTS]) and dH]) are obtained, respectively. D 
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As we have already seen in the above example, the reciprocity formula can 
also be used to verify the modular inverse of Gaussian integers. Specifically the 
following corollary demonstrates its use in calculating the modular inverses between 
two Gaussian integers. 

Corollary 4.6. Let a,b,c,d eZ\ {0}, and s ^ a^ + b^ > l,t = c^ + d^ > 1, 
if gcd{s,t) — I, then 

{a + i b)u + (c + 2 d)v = \ -\- {a + ib)(c + i d){a — ib){c — i d) 

where u = (a — i b){s^^)t, v = {c — i d){t^^)s. 

That is, {a + i b)^^ (mod c + id) is congruent to (a — i b){s^^)t (mod c + i d), 
and {c + i d)^^ (mod a + ib) is congruent to {c — i d){t^^)s (mod a + ib). 

Proof. 

(a + i b)u + {c + id)v ^ {a + ib){a-i 6)(s"^)t + {c + id){c-i d){s^'^)t 

= {a' + b^){.s-')t + (c2 + d^){.s-')t = sis-')t + t{t-'), 
= l + st=:l + (a2 + 62)(c2+rf2) 

= 1 + {a + i b){a — i b){c + i d){c ~ i d) 

D 

5. (a-i)i,(a-i)„i 

It may be doubtful why (a~^)m fOT {"ml = 1 is defined in such a strange way as 
in Eq.®, as the most 'logical' value is since a (mod 1) = in the conventional or 
classical definition of modular arithmetic. With some examples, we try to arguably 
convince ourselves that this is actually a better choice than to have (a~^)i = 0. 

First, since n = (mod m) for all integers n when |7tt,| = 1, the definition that 

(a~^)m = -|m|(sgn(m) - sgn(a)) + sgn(a), \m\ = 1 

does not contradict with the classical definition. 

Secondly, as it is shown in Theorem 13. 1[ the reciprocity formula Eq.® will be 
vahd for all a, & G Z, including \a\ = 1 and |5| = 1 as long as gcd(a, b) — 1. 

For example, let tti = 1, a > 0, with assumption of the classical definition and 
the reciprocity formula, we have 

a(a-i)i + 1 • (l-i)a = 1 + a • 1 =^ {1-% = l + a 

and that is contradictory to the fact that < (l^^)a < a. 
On the other hand, with the definition of Eq.®, then 

a{a-^)i + 1 • (l"i)a = l + a-l =^ a-l + l-l = l + a-l 

and that is true. 

Take another example with Eq.Q. Let a = 7, 6 = l,fc = 3, and assume the 
classical definition of modular inverse, we have 

(7-1)3.7+1 =3(7- (1-1)3) + (7-i)i 

=^ 19 = (7-1)22 = 3(7 - 1) + = 18 

(15) 

and that is contradictory, whereas, if (7^^)i = 1 then both sides are equal. 
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6. Conclusions 

We have proved the reciprocity formula for modular inverse based on a new 
definition for modular inverse. The major difference between the new definition and 
the classic definition arises when \m\ = 1. The reciprocity formula is also shown to 
be valid for some Gaussian integers. 

The potential use of the reciprocity formula is far more extensive as seen from 
the few examples in the discussion above, and much further works remain to be 
carried out. 
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